I have two files have the same extension(.evt), but one is xml and other is a composite format mixed with key-value pairs and csv. To process xml file in logstash, I must send the whole file content as part of the message. To parse the composite format, I must send the file line by line.
I am able to parse the file individually, but I am stuck with how to use multiline patterns within conditions? Any help is appreciated, sample files are available.